OpenDNS with PiHole not blocking porn
I have configured my network to use my PiHole for DNS and for the PiHole to use 208.67.222.222, 208.67.220.220 and 2620:119:35::35#53 (there just in case but my DHCP server doesn't serve v6) as the upstream servers. In OpenDNS, I have set the web filtering to Low (which includes porn) but porn still isn't being blocked.
When I test using the OpenDNS test sites, I get confirmation I am using OpenDNS and that phishing website are blocked but the adult sites seem to still work.
My OpenDNS dashboard also doesn't seem to be showing any requests but I've read this could take 24 hours to populate.
Can anyone please help?
-
Ok, you do not seem to forward your DNS queries to OpenDNS, check at http://welcome.opendns.com/
If this is the case, you're not using OpenDNS at all, especially not the dashboard settings.Copy & paste the complete plain text output of the following diagnostic commands from an end user device to here:
nslookup -type=txt debug.opendns.com. 208.67.220.220
nslookup -type=txt which.opendns.com.
nslookup whoami.akamai.net. -
Thanks for your reply. Here are my outputs.
nslookup -type=txt debug.opendns.com. 208.67.220.220
Server: 208.67.220.220
Address: 208.67.220.220#53
Non-authoritative answer:
debug.opendns.com text = "server r1.lon"
debug.opendns.com text = "flags 40020 0 8050 180000000000000000003950000000000000000"
debug.opendns.com text = "originid 417079200"
debug.opendns.com text = "actype 2"
debug.opendns.com text = "bundle 12690742"
debug.opendns.com text = "source 86.188.39.98:62237"
nslookup -type=txt which.opendns.com.
Server: 192.168.1.200
Address: 192.168.1.200#53
Non-authoritative answer:
which.opendns.com text = "r3.lon"
Authoritative answers can be found from:
nslookup whoami.akamai.net.
Server: 192.168.1.200
Address: 192.168.1.200#53
Non-authoritative answer:
Name: whoami.akamai.net
Address: 208.69.34.82
-
That assumption is wrong. Just the logs and stats become active after 24 hours. Filtering and blocking are available instantly. If not, then you have a caching problem and must flush your local DNS caches, the local resolver cache and the browser cache. There can be many more reasons for not working, but they are almost local to the end user device being used.
-
Usually I would agree with you but this is a brand new lab with a brand new setup of everything in it. Nothing has been cached, nothing has been previously browsed, nothing has been previously requested. It just didn’t work for 24 hours.
An anomaly I am sure but that’s what it is. I have a “small” amount of knowledge in this area but unfortunately no previous experience with OpenDNS.
My testing of other services (in replica labs) have been instant.
Please sign in to leave a comment.
Comments
9 comments